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Abstract 

We give an algorithm for constructing the algebraic huil of a given matrix Lie 
algebra in characteristic zero. It is based on an algorithm for finding integral linear 
dependencies of the roots of a polynomial, that is probably of independent interest. 

1 Introduction 

One of the major tools in the theory of algebraic groups is their correspondence with 
Lie algebras. Many problems regarding algebraic groups can be reformulated in terms 
of the corresponding Lie algebras, for which they are generally easier to solve. There is 
considerable interest in studying algebraic groups computationally (cf., e.g., [6], [TÜ]). Also 
for this it would be of great interest to exploit the connection with Lie algebras. In this 
paper we treat a question that arises in this context, namely the problem to decide whether 
a given Lie algebra corresponds to an algebraic group. In particular, a positive solution 
to this problems enables us to decide which subalgebras of a Lie algebra of an algebraic 
group correspond to algebraic subgroups. To tackle this problem we restrict to base fields 
of characteristic O, because for that case there is a well developed theory of the connection 
between algebraic groups and Lie algebras (see [5]). In particular, a connected algebraic 
group is completely determined by its Lie algebra. 

Let \^ be a finite-dimensional vector space. A subgroup G C GhiV) is said to be 
algebraic if there is a set of polynomial functions P on End(K) such that G consists of 
all g G Ghiy) with f{g) = O for all f E P. To such a group corresponds a Lie algebra. 
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Lie(G) C qI{V) ([5], Chapter II, §8), where by QliV) we denote the Lie algebra of all 
endomorphisms of V. Now a given Lie subalgebra g C qI{V) is called algebraic if there 
is an algebraic subgroup G C GL(V^) such that q = Lie(G). In [5], Chevalley studied 
this concept in characteristic O, and gave several sufficiënt criteria for a g C QliV) to be 
algebraic. 

Let g C qI{V) be any Lie algebra. Then by [5J, Chapter II, Theorem 13, there is a 
unique smallest algebraic Lie algebra containing g. This algebraic Lie algebra is called the 
algebraic huil of g. In this paper we consider the problem of constructing the algebraic 
huil for a given g C gl{V). 

Based on results of Chevalley we describe an algorithm for constructing the algebraic 
huil. The computationally hardest step is to construct the splitting field of a polynomial. 
Since this can be a rather formidable task, we subsequently give an algorithm which is 
similar in nature, but avoids the problem of having to construct splitting fields. This is 
based on algorithms for finding integral dependencies of algebraic integers. Combining 
complex and p-adic approximations to the roots, and the technique of lattice reduction 
(LLL), we obtain an algorithm for computing the Z-module of integral relations among 
a given set of algebraic integers. In the literature, several somewhat similar methods for 
solving this problem are know (cf., e.g., [7] §2.7.2, [12]). These methods focus on finding 
one linear dependency, while our algorithms find (a basis of) the whole module of linear 
dependencies. 

This paper is arranged as follows. In Section [2] we introducé the notation that we 
use, and summarize a number of results of Chevalley. Then in Section [3] we describe the 
algorithm that makes use of splitting fields of polynomials. In Section H] we show how 
Galois groups can in some instances be of help with constructing the algebraic huil. This 
is used in Section 0, where we give the algebraic huil of the Lie algebra spanned by a 
semisimple 4 x 4-matrix. Then in Section [ü] algorithms are given for finding integral linear 
dependencies among the roots of a polynomial. These algorithms are then used in Section[7l 
where an algorithm is given for constructing the algebraic huil of a Lie algebra, avoiding the 
construction of splitting fields. Finally, in Section[8]we report on some practical experiences 
with an implementation of the algorithms in the computer algebra system Magma [HE]- 

2 Preliminaries 

Here F will be a field of characteristic 0. We will use the language of matrices, rather 
than that of endomorphisms, as this is more convenient for calculations. In particular, 
gi{n, F) is the Lie algebra of all n x n-matrices over F. By [5], Chapter II, Theorem 14, a 
Lie algebra g C gl{n, F) is algebraic if it is generated by algebraic Lie algebras. It follows 
that g is algebraic if and only if the algebraic huil of the subalgebra spanned by each basis 
element of g is contained in g. Hence we can compute the algebraic huil of g if we can 
compute it in the case where g is spanned by one matrix X. 

Let X G gl{n,F). Then by dri^) "we denote the algebraic huil of the Lie algebra 
spanned by X. Let X = S + N he the Jordan decomposition of X. Then from [5J, Chapter 
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II, Theorem 10 (see also [2], §7), it follows that Qf{X) = gF{S)®QF{N). Moreover, driN) 
is spanned by N, by [5], Chapter II, §13, Proposition 1. So the problem is reduced to 
finding 0_p(X) when X is semisimple. 
The foUowing theorem is proved in [5]: 

Theorem 1 (Chevalley) Let X G Qi{n, F) be semisimple, and let K D F be an algebraic 
extension containing the eigenvalues of X. Let U G GL{n,K) be such that 

Y = UXU~^ is in diagonal form, with the ai on the diagonal. Set A = {(ei, . . . , e„) G Z" | 
'^^CiOi = 0}. Then 

1. gj^{X) = U-^Qk{Y)U and 

Qk{Y) = {diag(ai, . . . , a„) \ ai G K and Cjaj = O for all (ei, . . . , e^) G A}. 

i 

2. QFiX)®K = ÖKiX). 

3. Qf{X) C Af{X) where Af{X) is the associative F-algebra with one generated by X . 

The first part of 1. is straightforward. Let Gk{X) denote the smallest algebraic sub- 
group of GL{n, K) such that its Lie algebra contains X. Then Gk{X) = U^^Gk{Y)U and 
0x(X) = Lie(G;^(X)) = U-^Ue{GKiY))U = U-^QKiY)U. The second part of 1. is [5], 
§13, Proposition 2. 2. follows from the proof of |5j, §13, Theorem 10. Furthermore, 3. is 
[5], §14, Proposition 14. (There it is shown that Qf{X) is contained in the associative alge- 
bra (not necessarily with one) generated by X. However, for us it will be more convenient 
to add the identity.) 

3 An algorithm for the algebraic huil 

In this section we use the same notation as in the previous section. In particular we let 
X be a semisimple n x n-matrix with coefïicients in the field F of characteristic 0. We 
let i^' be a finite extension of F containing the eigenvalues ai, . . . , a„ of X. Furthermore, 
A = {(ei, . . . , e Z" I Ei eiai = 0}, and Aq = {(d, . . . , e„) G Q" | Ei e^ai = 0}. By 
Af{X) we denote the associative algebra with one generated by X. The algorithm is based 
on the foUowing lemma. 

Lemma 2 For e = (ei,...,e„) G Q" and i > O set Ai(e) = Ylk=i'^kOil- Let I = 
XO, X, . . . , X* be a basis of ApiX) . Set 

t 

T = {(70, . . . , 7j e I = O for all e G Aq}. 

1=0 

Then Qf{X) = {Elo7^^^ I (7o, ■■■,lt)e T}. 
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Proof. Let Y = diag(ai, . . . , a„). Then there is a f/ G GL(n, K) with UXU^^ = Y. Here 
t + 1 is the degree of the minimal polynomial of X. Then since the minimal polynomial 
of a semisimple matrix is the square free part of its characteristic polynomial, the minimal 
polynomial of Y (over K) is the same as the minimal polynomial of X (over F). Hence 
AKiY) is spanned hy I,Y,Y^, . . . ,Y'. 

Set y = Yll=o 7«^*- Write y{k, k) for the entry in y on position (fc, k). Then by Theorem 
[H ?/ G Qk^X) if and only if for all e G A we have J2k^ky{k, k) = 0. It is clear that in 
this statement we may replace A by Aq. Indeed, A is a subgroup of Z" and hence it is 
finitely generated (see, e.g., CoroUary II. 3. k). Furthermore, a Z-basis of A will also 
be a Q-basis of Aq. 

Now y{k,k) = 5]-=o7j«L and hence Y2=i^ky{k,k) = Yh^o Ai{e)-fi. Now set 

t 

r = {(70, . . . , 70 e K'+' I J2 Me)% = O for all e G Aq}. 

i=0 

Then by Theorem [T] we get that gxiY) = {Yll=oli^^ I (70) • • • ;7t) ^ '^'}- By the same 
theorem, 0;^(X) = U'^QKiYp and hence 0k(^) = {E!=o7i^' I (7o, ■■■,lt)e V}. 

Now let Xi, . . . , be any basis of 5f{X). Then according to 2. of Theorem [T] they 
are also a basis of 0ii-(X). So 0x(-^) consists of E- /3jXj with Pi G if. By 3. of Theorem 
^ Xi e Af{X). Hence 0k(X) n Af{X) consists of J2i ^i^i with 6i G F. We conclude that 
0x(X) n Af{X) = Qf{X). From this we get the desired conclusion. □ 

In order to use this result for a practical algorithm we restrict to the case where F is 
an algebraic number field. Then the algorithm for computing Qf{X) runs as follows. 

Algorithm 3 Let the notation be as above. We suppose that F is a number field. This 
algorithm computes an F -basis for 0i?(X). 

1. Compute an algebraic extension K D F containing the eigenvalues «i, . . . , a„ of X. 

2. Compute (a Q-basis for) Aq. 

3. Compute (an F -basis for) T (where T is as in Lemmal^ . 

4- Return the set consisting of ^^^Q^jiX^ where (70,..., 7t) runs through the basis of 
the previous step. 

Proof. First we show that all steps are computable. First of all, by iteratively factoring 
polynomials over number fields we can compute a number field K D F containing the 
eigenvalues «i, . . . of X. Furthermore, K has a finite Q-basis, and a finite F-basis. 
Then by writing the on a Q-basis of K we can derive a set of hnear equations for Aq, 
hence we can compute a basis of this space. Note that Aj(e) depends linearly on e. Hence 
in order to compute T it is enough to consider e in a Q-basis of Aq. So by writing the 
Aj(e) on an F-basis of K, we can derive a set of linear equations for T. Therefore, we can 
compute a basis of this space. The last step is trivially computable. 

The correctness of the algorithm follows from Lemma [2l □ 
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Example 4 Let X G gl(4, Q) have minimum polynomial + bT"^ + c with D = b"^ — Ac 
not a square in Q. Then the eigenvalues of X are ai = a, «2 = — «3 = /?, «4 = — /3, 
where = |(— &+a/D) and = |(— 6— a/D). Then a and (3 cannot be proportional over 
Q (otherwise and (3"^ would be as well). Hence the «j span a 2-dimensional subspace of 
K. So dim A = 2, and is spanned by = (1, 1, O, 0), = (O, 0, 1, 1). Then Ao(e^) = 2, 
Ai(e^) = A3(e^) = O, A2{e}) = . For we get the same except that l^2{i') = W'^- So 

T = {(70, . . . , 73) G Q' I 270 + 20^72 = 270 + 2/3272 = 0}. 

Hence T consists of (0,71,0,73). We conclude that Q{X) is spanned by X,X^. 



4 The permutation module 

Here we use the same notation as in the previous section. In this section we make some 
observations that on some occasions directly give a basis of Qf{X). 

Let ƒ be the characteristic polynomial of X. Let K be the splitting field of ƒ, and 
G = GaA{K/F). We represent G as a permutation group on the roots of 
ƒ. Let M be the permutation module of G over Q, i.e., M has basis Wi,...,Wn and 
a ■ Wi = w„(^i^ . On many occasions we will write the elements of M as row vectors. Then 
a{ai, . . . , a„) = (ao-i(i), . . . , ao-i {„,))■ There is a direct sum decomposition of G- modules 
M = Mq © Ml, where Mq = {^^i CLi^i \ X]i '^i = 0} Mi is spanned by Wi + ■ ■ ■ + 

Let (ei, . . . , e„) G Aq and a G G then O = (T{Y,i etai) = Xli eia<^(i) = Xli e^-i(i)ai. It 
foUows that Aq is a G-submodule of M. So by Maschke's theorem Aq = Vi © ■ ■ ■ © 14, 
where the are irreducible G-submodules. 

From Lemma [2] we recall that Aj(e) = Yl2=i ^k(^\i where e G Q". 

Lemma 5 Write f = x"' + aix"'"^ + ■ ■ ■ + a„. T/ien i/ie G-suhmodule Mi C M occurs in 
Aq if and only if ai = 0. Furthermore, Aj(e) = Tr(X*), where e = (1, 1, . . . , 1) spans Mi. 

Proof. We have oi = O if and only if Yli'^i ~ hence the first statement. Set e = 
(1, 1, . . . , 1). Let Y be as in the proof of Lemma [21 Then Aj(e) = al = Tr(y*) = 
Tr(X^). □ 

Lemma 6 Suppose that ƒ is square-free and that Mq is irreducible. Then ai = O implies 
Aq = Ml and ai 7^ O implies Aq = 0. 

Proof. Note that Aq cannot contain Mq since in that case a vector like (1, —1, O, . . . , 0) 
would be contained in Aq, implying ai = 0:2 (which is impossible because ƒ is square free). 
Hence the lemma foUows by Lemma [51 □ 

Corollary 7 Suppose that ƒ is irreducible. Let Ap{X) denote the associative algebra gen- 
erated by X. Suppose that G is 2-transitive, or that F = Q and n is prime, /ƒ Tr(X) = O 
then 0f{X) consists of all X' G Af{X) with Tr(X') = O, otherwise Qf{.X) = Af{X). 
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Proof. If G is 2-transitive then Mq is irreducible, by [TT], CoroUary 29.10. If n = p is 
prime then Mq is irreducible over Q. This can be proved as follows. First of all, since G is 
transitive it contains a p-cycle. Now we let H be the subgroup generated by this p-cycle. 
Then M is also an if-module. Moreover, as if-module it is isomorphic to the regular 
module, i.e., to the module afforded by the left action of H on the group algebra Q_H. The 
if-submodules of Qif are exactly the ideals of Qif. But Qif is isomorphic to Q[x]/(a;P — 1), 
which by the chinese remainder theorem is isomorphic to Q © Q[x]/ {x^~^ + x*'"^ + ■ ■ ■ + 1). 
We conclude that Qif splits as the direct sum of two simple ideals. Hence the if-module 
M is a direct sum of two simple submodules. So the same holds for the M when viewed 
as G-module. 

Now the result follows by Lemmas O [61 □ 
In particular, if G = S'„ or G = A„ (n > 4) then we can easily compute 0(X). 

5 Degree 4 

Here we use the observations of the previous section to give a complete description of 
Qf{X), where X is a semisimple 4 x 4-matrix, with irreducible characteristic polynomial. 

Let ƒ = + ax^ + hx"^ + cx + d he the characteristic polynomial of X, and suppose 
that it is irreducible. Let G denote the Galois group GdX{K/F)^ where K is the splitting 
field of ƒ. We remark that if F = Q then it is straightforward to determine G, e.g., by the 
procedure outlined in [18], Theorem 106. Note that the case where G = S^.A^ is settled 
by CoroUary [71 

Proposition 8 Suppose that G is not isomorphic to S4 or A4. Then 

1. ifa = and - Aab + 8c ^ O then Bf(X) = {X' e Af{X) \ Tr(X') = 0}, 

2. if a = O and — 4ab + 8c = O then Qf{X) is spanned by X, X^, 

3. if a ^ O and — Aab + 8c 7^ O, then Qf{X) is spanned by /, X, X^, X^, 

4- if a ^ O and — Aab + 8c = O, then Qf{X) is spanned by /,X, X^ + ^X^. 

Proof. Since G is a transitive permutation group on 4 points, not isomorphic to S4, 
A4, there remain the possibilities G = Z/4Z, G = D^, G = V4. These groups have 
respective generating sets {(1,2,3,4)}, {(1,2,3,4), (1,3)}, {(1,2)(3,4), (1,4)(2,3)}. In the 
first two cases the module Mq decomposes as a direct sum of two submodules with bases 
{(1,-1,1,-1)}, {(1,0, -1,0), (0, 1,0, -1)} (this holds for both cases). Now Aq cannot 
contain the second module (as in that case some roots would be equal). If G = V4 then Mq 
decomposes as a direct sum of three sub modules, respectively spanned by (1, 1,-1,-1), 
(1,-1,1,-1), (1,-1,-1,1). The G-module Aq cannot contain two of these vectors, as 
otherwise after adding it would follow that two roots are equal. 

So in all cases, after maybe renumbering the roots, there are the foUowing possibili- 
ties for Aq: Aq = O, Aq is spanned by (1,1,1,1), or by (1,1,1,1), (1,1,-1,-1), or by 
(1,1,-1,-1). 
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Let «1, . . . , «4 be the roots of ƒ . Set ai = ai + 02 — as — «4, «2 = «1 — «2 — «3 + «4, 
03 = «1 — «2 + 03 — ö4- Then the product 010203 is a symmetrie polynomial in the «j, hence 
can be expressed in terms of the coefïicients of ƒ. It turns out that —010203 = — 4ab + 8c. 
So this number is zero if and only if A contains (1, 1,-1,-1). This proves 1. and 3 (cf. 
Lemma [5]) . 

Suppose that — Aab + 8c = 0. Then we can assume that A contains e = (1, 1,-1,-1). 
In order to obtain a basis of T (cf. Algorithm[3]) we have to solve the equation Yl^i=o - 
0. Note that Ao(e) = Ai(e) = 0. We know that ai + «2 — 03 — «4 = O, and also that 
ai + «2 + «3 + «4 = —O. These two relations are equivalent to ai + «2 + |o = O and 
«3 + «4 + |o = 0. Now A2(e) = 2a| + 002 — 2al — aa^ as the difference is equal to 

11 11 

(«1 — «2 — + «2 + -jO) + (— «3 + «4 + -jCi){0iS + «4 + -o) = 0. 

Similarly, A3(e) = — |o(2a| + 00:2 — 2a| — 00:4) as the difference is equal to 
(«1 — «10:2 — -oai + «2 + '^'^2 + Ta^)(«i + «2 + ^0) + 

(—«3 + «304 + -00:3 — «4 — 004 — -O )(a3 + «4 + -o) = 0. 



From this it follows that 3oA2(e) + 4A3(e) = 0. Furthermore, A2(e) = 2o3^ + 0^2 — 2a| — 
004 = 2(a2 — Ö4)(ö2 + ö4 + |ö)- From this we conclude that A2(e) 7^ 0. Indeed, «2 — «4 7^ O 
as ƒ is irreducible. Secondly, «2 + «4 = — |o would entail «i — «4 = O as «i + «2 = 

Suppose O 7^ 0. Then the equation X]i=o^«(^)7* = O is equivalent to (—-^73 + 
73)A3(e) = O, and we have just seen that A3(e) 7^ 0. So 73 = ^72 and 4. is proved. 

If O = O, then A3(e) = O and the equation ^jAj(e)7i = O reduces to 72 = 0. Also 
e' = (1, 1, 1, 1) G A. Then by adding e and e' we see that «2 = — «i and «4 = —«3. So 
Ai(e') = A3(e') = O, and Ao(e') = 4. So we get the equation 470 = 0. This proves 2. □ 

The calculations in the final part of the proof have been done with the help of Magma. 
Using similar calculations more results of the same fiavour can be derived. Without proof 
we state the following result. 

Proposition 9 Let X be a 6 x Q-matrix with irreducible characteristic polynomial p = 
+ ax^ + bx'^ + cx^ + dx"^ + ex + f . Suppose that the Galois group has number 4,6,7,8, or 
11 in the classification of transitive groups in Magma. Set 

5 , n 18 , 1 t; 1 O, 1 , 

ri = c-\ (o 00) and ro = e o H ad. 

27^ 5 ' 81 27 3 

Then 

1. If Tl = r2 = O then 0f(X) is spanned by 

I, X, -x^ + x^ ^x^ + —x^ + x\ 

' ' 2 ' 54 6 

2. If one of ri,r2 is nonzero then Qf{X) is equal to Af{X) if a ^ O, and equal to 
{X' e A{Xf) I Tr(X') = 0} O = 0. 
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6 Finding integral dependencies of roots 



Let ƒ G Q[x] be a square free polynomial with roots «i, . . . , a„ in some splitting field F D Q. 
Elements of T D K := Q[ai, . . . , a„] can be represented as polynomials g G Q[Xi, . . . , X„] 
coming from a representation K = Q[Xi, . . . ,X„]// for some zero-dimensional ideal I C 
Q[Xi, . . . ,X„]. Altliough constructive methods for the construction of / or are known 
eg. [IZj, in general they are limited to small examples: the splitting field can have degree 
as large as nl over Q and generically, it has. In what follows we assume ƒ to be monic and 
integral, so that ai are algebraic integers. We will give algorithms for the foUowing tasks: 

1. Given some g G Z[Xi, . . . , X„] decide if g{ai, . . . , a„) = O 

2. Given gj G . . . , X„] (1 < j < s) find a Z-module basis for 

s 

A := {eeZ' ejgjiai, ...,«„) = 0}. 
j=i 

Obviously, both tasks are trivial if exact representations for K oi I are known, so we 
essentially assume that [K : Q) is too large to allow direct algebraic constructions to 
succeed. Our method will be based on approximate representations of the ai, ie. we are 
going to use the field C of complex numbers and certain unramified p-adic extensions of 
Qp for our work. For basic properties of p-adic numbers, we refer to [2Ül [T3] . 

Let p G Z be a prime number. For any r G Z, we can write r = p^r' for some r' not 
divisible by p. The function 

Vp:Z\{0}^Z:r = p^r' ^ / 

is called the p-adic valuation on Z. We extend Vp to all of Z by defining fp(0) := oo and 
extend further to Q by setting Vp{a/b) = Vp{a) — Vp{b). Via 

\.\p : Q ^ Q : X ^p-''''^^\0^ O 

this gives rise to the (normalised) p-adic absolute value and thus the p-adic topology on 
Q. The completion Qp of Q wrt to |.|p is called the field of p-adic numbers, it contains the 
p-adic integers, the completion Zp of Z. 

Suppose now that over Fp, the field with p-elements, ƒ factors as 

i 

ƒ = n P 

1=1 

with irreducible, pairwise coprime fi G ¥p[t]. Then there is an (unramified) extension 
F/Qp of degree fp := Icm'^^ deg /j where ƒ splits into linear factors. Furthermore, there is 
a unique extension of |.|p to F which is again denoted by |.|p. Similarly to M or C, elements 
in F cannot, in general, be represented exactly, instead approximations with a given fixed 
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precision have to be used. The advantage of using F as a sphtting field rather than C or K 
directly, hes in the fact that arithmetic operations in F incur less numerical loss of precision 
that operations with real numbers, while the algebraic degree of F/Qp is still much smaller 
than the degree of K/Q. The main disadvantage of using F or C is that, since there is no 
exact representation of elements, in general we cannot decide if an element is zero without 
additional Information. 

Lastly, we note that there is exactly one prime ideal P of "Zx (the ring of integers of 
K) such that F = Kp the P-adic completion at P. For elements x e Z^, we have x & P^ 
if and only if \x\p < p~^. 

In addition to the p-adic Information mainly encoded in F we are also going to need 
complex Information about elements in K. As a number field K/Q, K admits {K : Q) 
many distinct embeddings (.)^-'^ (1 < i < {K : Q)) into the complex numbers. For any 
X & K we define a length: 



(K-.Q) 

T2: K ^R:x^ ^ 



Note that -\/72 is an Euclidean norm on the Q-vectorspace K. Elementary Galois theory 
and the inequality between arithmetic and geometrie means can be used to derive non- 
trivial lower bounds on T2{x): 

^"^V^W^ < K^T,{x) (1) 

which implies for algebraic integers x e Z^- that 

T2{x)>{K:Q). (2) 

Reiiicirk. Let . . ., /3„ e C be the complex roots of ƒ. In general it is extremely difficult 

to sort the complex roots in such a way that «j corresponds to f3i which mcans that for 
example from J^"^]^ ejCtj = O we cannot not, in general, conclude that Yl^^=i ^iPi — O- 

After these preliminaries we can now state our algorithm for the first problem: 

Algorithm 10 Let ai, . . a„ G F/Qp he the roots of some monic polynomial ƒ G Z[t] 
and assume that F is unramified over Qp. Set K := Q(a;i, . . . , an) and let g G . . . , Xn\ 
be arbitrary. This algorithm decides if 

g{ai,...,as) = 0. 

1. Compute a bound M > O such that \g{cei, . . . , anY-'^\ < M for all complex embeddings 
(.)(^) : K ^ C. Such a bound can be obtained by first computing a bound M' on 
the complex roots Pi & C of f and then estimating Igiji, ■ ■ ■ , 7„)| for all choices of 

h\ < M'. 
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2. Compute a bound r > {K : 

r log M ■ 
(r:Qp) logp 



O O f h. ._ r r logM -i 



4- Compute öij such that \aj — aj\p < p^^ 

5. Evalute G :— g{Ö!i, . . . , q;„). 

6. /ƒ IGlp > return not Zero, otherwise return IsZero. 

Proof. Throughout this proof, we write for finite precision approximations to the exact 
root ttj G r that we cannot exactly represent. Similarly, G := g{ai, . . . , a„) is the exact 
element that we cannot compute but need to decide if G = O and G := g{ai, . . . , ctn) is a 
finite precision approximation. 

We first note that since ƒ G is monic, we have «i G Zr, the integral closure of Zp 
in r. Now g G Z[a;i, . . . imphes G G as well. Writing — ctj + p''Pi with some 
Pi G Zr we obtain from the ultrametric property of 



\g{ai,...,an)\p < \g{ai, . . . , 



a. 



nj \pi 



i.e., there is no precision loss in the evaluation. 

Let K :— Q{ai, . . . , as above and P be the unique prime ideal Zk Z) P\p such 
that r = Kp. Then for x G Ijr such that \x\p < wc obtain x G P*^, thus Nk/(q{x) G 
NK/q{PY ^^d, since Nk/q{P) is an ideal in Z generated by p^'-'^p; 

Now, Iets assume we have k and M as in the algorithm and \G\p < p"*^. From 

T2{G) ^M^{K: 



we get either G = G = O or Nk/q{G) > p'=(r:Qp) ^nd thus 

k{T : Qp) ^ logM 
K -.Q - hgp 

which contradicts our choices. Thus wc concludc, G = O as claimed. □ 
While the above algorithm can veryify a relation, it does not teil us how to find one. 
Also, the precision neccessary to verify relations can be extremely large, it is essentially 
linear in [K : Q) = #Gal(/). In order to usc similar idcas to find relations we first need a 
result allowing us to get a bound on a basis of the relation lattice: 

Theorem 11 Let ai, . . ., he algebraic integers, K :— Q(q;i, . . . , an), r :— {K : Q) and 
define 

n 

A := {e G Z" I J^e^öi = 0}. 

i=l 
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Suppose that |q;-"'''| < M for all complex emeddings {-Y^'' : K C, then A has a Z-basis 
&i G Z", 1 < ï < / with 



Proof. The function 



ƒ : Z" 



\ 



n 
i=l 



is a convex distance function in the sense of [T5l p. 250]. Let m be a standart basis 
element of Z", ie. m = (mj)i<j<„ and = O for all i ^ while = 1. Then 
f{m) = ^yT2{aig) < ^M. From ([2]) we get for non-zero algebraic integers x & K that 
T2{x) > r, thus f{m) > ^/r, for all m G Z" with f{m) =^ 0. The rest now foUows directly 
from the Proposition of [T51 p. 250]. □ 
The next essential ingredience is the LLL algorithm for lattice reduction. We need the 
foUowing property of a reduced basis [3 Theorem 2.6.2.(5)]: 

Lemma 12 Let A C Z" be a lattice. Suppose that A contains linear independent clements 
xi, xi of norm \\xi\\2 < M. Then for a LLL-reduced basis bi, bn of A we have 
\\bi\\l<2'''^M^ forl <i<l. 

Combining the previous results we can now give a first algorithm for linear dependencies: 



Algorithm 13 Let ƒ G Z[t] be monic and ai, . . G T/Qj, be the roots of f in some 
unramified extension ofQp of degree fp. We assume that clements in T are represented as 
vectors in Qp wrt. some fixed basis cui, . . ., uoj^. Furthermore, let gi G Z[xi, . . . ,x„] be 
arbitrary (l < i < s) and define 

s 

A := {e G Z" I eigi{ai, . . . , a„) = 0}. 



i=l 



This algorithm computes a Z-basis for A. 

1. Compute a bound M' > O such that for each i we have \gi{ai, . . . , an^-'^l < M' , for 
all complex embeddings {.)^^^ : K ^ C 



2. Set N := s'-^M'-^ 

fp logP 



g g^f. ^ r (Q(ai,...,a„):(Q) logA^Ms -i 



4. Set X := N^2'-^ 

5. Compute aj such that \aj — aj\p < p"'^ 

6. Compute (3i := g{ai, . . . , q;„) for 1 < i < s, and form a matrix B where the ith row 
contains the lift of coefficients of (3i as clements to Z. 
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7. Form a big matrix B E 'Z^^+M^^'^+M by first concatenating Is and \B to get {Is\\B) 
and then appending a matrix {OIs\Xp''If^) to the bottom. 

8. Apply the LLL algorithm to the rows of B obtaining a new matrix L = {Li,j)i<i,j<fp+s- 

9. The lattice A is generated by {Li,j)i<i<i,i<j<s where l is the index of the last row Li 
of L with norm \\Li\\2 < A. 

Pro of. Using Theorem [TT] we see that is a bound for the maximum norm of a length of 
a basis-relation, so that NMs is a bound for the complex embedding |(.)^"'''| of a possible 
relation. The precision is now chosen in the same way as in Algorithm [TÜ]so that a possible 
relation e G with ||e||2 < A^ and | Y^l^i eigi{ai, . . . , a„)|p < p^'' has to be zero. 

In the matrix L, the s-leftmost columns encode the transformations applied to B while 
the rightmost columns give the evaluated relation: 

S fp 

A ^ Lj^igi{ai, . . . , a„) = ^ Lj^ij^^^i + P^x 

i=l i=l 

(for some x G Zr). So we see that if there is a relation Yld=i ^«^'«(«i, • • • , «n) = O, then the 
Z-span of the first s rows of B contains a vector (ei, . . . , e„, «i, . . . , -uj^), with Ui G Ap'^Z. 
So by adding suitable multiples of the last fp rows of B we get that (ei, . . . , e„, O, . . . , 0) 
lies in the Z-span of the rows of B. 

Our choice of k and A now ensures the foUowing facts: 

1. If and only if (-^^j,j)i<j<s is a true relation, (-^^j,i+s)i<j</ is zero. 

2. If {L,j^i+s)i<j<f is not zero, then || (-^^i,j)i<i<s+/ Ih > A > A^ 

3. If there are relations within the bounds of Theorem [TTl then the LLL will find them 
since by Lemma [121 there must be rows in L with norm bounded by 2'^^^A^ < A 
which implies that they are relations. 

□ 

In applying the above algorithm, the main problem is the huge precision k needed 
to guarantee correctness. Since the precision determines directly the bit-length of the 
entries of 5, it is the crucial parameter for the runtime of the LLL algorithm. By [Tü] 
we know that the runtime depends quadratically on the bit-length on the input, thus we 
need to try to reduce the precision. Since verification of a relation (using Algorithm [TÜj) is 
computationally much easier than finding a relation, one method is to just use the above 
Algorithm [13] with a smaller precision, say [1.5(log N/ logp)] , apply the LLL alorithm and 
test the relations obtained. In case Algorithm [TÜ] fails to verify a relation obtained this 
way, we increase the precision and try again. The proof of the correctness shows that this 
method must terminate with the correct answer. 



12 



If the Galois-action on the p-adic roots «i, is known, then we can improve the 

runtime substantially, by using the fact that if J2i=i 9i{(^iy • • • 5 c^n) = O then we also have 
Si=i diic^ai, • • • , Oian) = O foi all cT G G = Gal(/). This allows us to replace LLL by much 
faster echelon algorithms over Z/p^Z foUowed by rational reconstruction. 

Algorithm 14 Let ƒ G be monic and ai, . . a„ G T/Qp he the roots of f in some 
unramified extension of Qp of degree p. Furthermore, let G = Gal(/) < Sn be given 
explicitly, ie aa^ = a„i. Now, let gi G Z[xi, . . . , x„] be arbitrary (l < i < s < H^G) and 
define 

s 

A := {e G I ^ Cigiiai, = 0}. 

i=l 

This algorithm computes a Z-basis for A. 

1. Compute a bound M > O such that for each i we have . . . , /3n)''''^| < M' 

2. Set N := s'-^M'-^ 

3. Setk:= [2 log A^M/ log p] 

4- Select a set S G of size s, containing the identity of G. 
5. repeat 

6. Compute ötj such that \ötj — aj\p < p~^ 

7. Set B := {) a matrix with s rows and O columns. 

8. for a & S do 

9. Compute jSi := gi{acri • • • , cïcrn) for 1 < i < s, and form a matrix B where the ith 
row contains the lift of coefficients of (3i as clements to Z. 

10. Set B := {B\XB), ie. append XB to the right of B. 

11. Apply HNF techniques to compute a the nullspace N of B E (Tj/p^Tj)^^^ in echelon 
form. 

12. Use rational reconstruction to find (if possible) the unique N G Q'""" such that 
N = N modp'^. If this fails, increase the set S by randomly selecting at most 
0.2^S clements in G \ S and k := [1.2A;] and go back to steplB 

13. Compute a matrix S G Z'^" such that S is a "L-basis for the intersection of the 
Q-vectorspace with basis N and V (using some saturation method) 

14. Apply the LLL algorithm to S to obtain a LLL reduced basis L. 

15. Set k := [1.2A;] and increase the set S by randomly selecting at most 0.2^S clements 
in G \ S. 
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16. until all rows Li of L are norm bounded: \\Li\\2 < N and are true relations by 
AlaorithmïTÜÏ 

Proof. Let K := Q(ai, . . . , then, since F is a splitting field for ƒ, we have K T = 
r*^ = r'^'^'''^) and the embedding is given via «j i-^ (c"(«i))o-eG- Furthermore, as Qp- 
vectorspace we have F = and K (S)q F = qI^^''^^ and the embedding extends via 

composition with F 9 7 = J2i=i1i^i ^ ili)i<i<f ^ Qp- apply this embedding to 

V := [gi{a), . . .,gs{a)]Q we get V <^ T = [{gi{cra))aeG, ■ ■ ■ (fi's(ö-a))aeG]r- The fact that 
extensions of scalars preseves dimension, 

dimQ(V') = dimr(F ® F) = dimQp(F ® F) 

implies that eventually Tkq^B = dimQ{V). Similarly, the increasing precision ensures that 
the rational reconstruction will be successful, eventually. To be more precise: Assume that 
S is large enough so that dimQ(l^) = Tkq^B and let M G Q'^** be a Q-basis matrix for the 
Q-nuUspace of B. Without loss of generality, we can furthermore assume that M = (Mij) 
is in echelon form, thus M is uniquely defined by V. If the precision k is chosen so that 

> max/i(Mj j)^ for the naive height h : Q ^ 1^ : p/q max(p, g), then in step [TT] 
will allow to compute M by reconstruction. 

If however S is too small, it may happen that rkq^B < dimQ(V) which means that the 
matrix computed in step [H] does not represent an approximation to M. In this case, 
either the reconstruction fails or the reconstructed relations cannot be verified in step [Tül 

□ 

In steps m [12] and [15] we increase the size of the matrix by exploiting the Galois action. 
This is done hoping that generically the new columns are independent from the previous 
ones as to increase the rank of B. It is clear that if 5* = G then the Z-nuUspace of B would 
be precisely A, however if 5* = {Ig} then there will always be spurious relations, some of 
which may be small in size. 

Also, using well known techniques that generalize rational reconstruction to number 
fields [Hl [H [9] and omitting steps [13] and [H] the algorithms can easily be extended to find 
i?-relations instead of Z-relations for R being any order in some number field. 
Remark. If the Galois action is known then on some occasions we can use Algorithm [TÜ] 
to give a more efficiënt algorithm for finding a basis of A = {(ei, . . . , e„) | ejO;, = 0}. As 
in Section[l]we denote the permutation module of G by M (where G is the Galois group). 
We assume that M has a unique decomposition as direct sum of irreducible G-modules, 
M = Vi® - ■ -(BVr- The uniqueness of this decomposition is equivalent to all of the Vi being 
non-isomorphic. In that case we can compute the direct sum decomposition by computing 
a maximal set of orthogonal primitive idempotents in the centre of the algebra 

EndG(M) = {T : M ^ M \ T is linear and T{a{v)) = (r{T{v)) forveM and a G G}. 

It also follows that Aq = V^^ © ■ ■ ■ © V^^.. Now for each Vi we do the following. For each 
element (ei, . . . , e„) in a basis of Vi we check whether Cittj = O with Algorithm [TÜl Then 
A is equal to the direct sum of the Vi that pass this test. 
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7 A second algorithm for the algebraic huil 



In this section we assume that the base field F is Q. We describe a second algorithm for 
constructing 0(q)(X), for a semisimple matrix X. It is similar in nature to the algorithm of 
Section [31 But instead of constructing the splitting field we make use of the algorithms in 
the previous section. For simplicity we assume that the characteristic polynomial is square 
free. The generalisation to the general case is straightforward. We use the same notation 
as in Section [3l 

First we find A := {e G Z"| Yl^=i^i^i — 0} using gi := Xi and either Algorithm \T3\ 
or Algorithm [TH Let e = (ei, . . . , e„) be a basis element of A. The second step consists 
in solving the equations that define T (cf., Lemma [2]). For z > O set (?j(e) = Yl2=i^kxl., 
and Aj(e) := gi{e){ai, . . . , a;„). Let t + 1 be the degree of the minimal polynomial of X. 
Then again with Algorithm [13] or [14] we find all integral (or equivalently, rational) linear 
dependencies of the Aj(e), i.e. all vectors u = {ui, . . . ,Ut) G Q* with ^jMiAj(e) = 0. Let 
M(e) denote the Q- vector space spanned by all those vectors u. Then T is equal to the 
intersection of all M{e), where e runs through a basis of A. So this way we find a basis of 
T, and hence a basis of 0q(X) (cf. Algorithm [3]) . 

8 Examples 

To generate a set of input examples we used the database of polynomials over the rationals 
with given Galois groups by Klüners and Malle [13]. In this database the n-th transitive 
permutation group on d points is denoted dT„. For each polynomial of degree d {6 < d < 12) 
with Galois group isomorphic to dT„ we computed the companion matrix X of ƒ and used 
this as input to our algorithms. In Figure[T]we plot the running times for the computation of 
0q(X) using both the algorithm in Section [3] with an exact, algebraic representation of the 
splitting field of ƒ as well as the algorithms in Section [7] against the logarithm of the group 
size. From the data presented, it is clear that the runtime of all three algorithms depends 
mainly on the size of the Galois group of ƒ, ie. the degree of the splitting field. Also, 
clearly, the algebraic representation of the splitting field has the worst runtime behaviour. 
In the second figure, we use a variation of the algorithms in Section [TJ where instead of 
using the bounds from Algorithm [TÜl we compute the relations with a much smaller bound 
and "verify" them using twice the p-adic precision. While this of course does not give 
guaranteed results, nevertheless, in all cases where the bounds were small enough to use 
them, the output obtained thus was correct. Since this approach does not directly depend 
on the size of the splitting field, we can use this for larger degrees. 

From both the figures we notice that for the purpose of computing algebraic hulls, it 
does not matter if Algorithm [13] or [14] is used. For proven results, the time is always 
dominated by the proof step while the actual computation takes only negligable time - 
even in large degrees and large Galois groups. 
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Figure 1: Time vs. log #Gal( ƒ) for ƒ of degree 6, 8, 9 and 10 and all transitive groups with 
proven bounds. C is used for data coming from the algebraic, exact representation of the 
sphtting field, B is time using [H] and A is using | 
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Figure 2: Time vs. log#Gal(/) for ƒ of degree 6,8,9, 10, 12, 14 and 15 and all transitive 
groups, using heuristic bounds. C is used for data coming from the algebraic, exact 
representation of the splitting field, B is time using [14] and A is using | 
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